From c48c3124c87de2c233c2596e1a759106b598b22b Mon Sep 17 00:00:00 2001
From: Roman Prykhodchenko <me@romcheg.me>
Date: Tue, 1 Oct 2013 17:19:05 +0300
Subject: [PATCH] Enable keystone authentication in Ironic

Currently Ironic installation script leaves authenticaiton
strategy in its default value which is noauth. This is not
relevant for the most of development and testing environments.

This patch sets authentication strategy for Ironic to keystone
and specifies the path to the policy file.

Closes-bug: #1233612
Change-Id: Idacbda05663e7ef949cbce0dbdf28eaa36b6a1a9
---
 lib/ironic | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/lib/ironic b/lib/ironic
index f3b4a72f66..8c1f52b330 100644
--- a/lib/ironic
+++ b/lib/ironic
@@ -79,6 +79,8 @@ function configure_ironic() {
 # configure_ironic_api() - Is used by configure_ironic(). Performs
 # API specific configuration.
 function configure_ironic_api() {
+    iniset $IRONIC_CONF_FILE DEFAULT auth_strategy keystone
+    iniset $IRONIC_CONF_FILE DEFAULT policy_file $IRONIC_POLICY_JSON
     iniset $IRONIC_CONF_FILE keystone_authtoken auth_host $KEYSTONE_AUTH_HOST
     iniset $IRONIC_CONF_FILE keystone_authtoken auth_port $KEYSTONE_AUTH_PORT
     iniset $IRONIC_CONF_FILE keystone_authtoken auth_protocol $KEYSTONE_AUTH_PROTOCOL